Pooja Jain | Senior Project Manager, IAM
More About This Author >
Pooja Jain | Senior Project Manager, IAM
More About This Author >
Enterprises today face a tough balancing act: protect legacy and on-premises applications while ensuring seamless access across hybrid environments. Traditional MFA has reached its limits, leaving gaps in security, user experience, and operational continuity.
With FIDO authentication now supported in SafeNet Authentication Service Private Cloud Edition (SAS PCE), Thales delivers on its promise of one trusted platform that unifies multi-factor authentication (MFA), single sign-on (SSO) and phishing-resistant passkeys. No passwords necessary. No third-party hardware supplier dependencies. No friction. Just continuous access availability, reduced latency, and the broadest range of phishing-resistant authentication methods—all managed under one roof.
Business Challenges of the Modern Landscape
Enterprises have to contend with a threat environment that is evolving faster than their authentication strategies. Cyberattacks are no longer limited to high-profile targets. Bad actors exploit any vulnerability, focusing on user credentials and authentication weaknesses.
Phishing remains the most common and effective attack vector and outdated MFA methods like SMS codes and OTP apps are increasingly vulnerable. At the same time, hybrid infrastructures are still common and create an expanded attack surface for bad actors to exploit. Sensitive data is distributed across cloud and on-premises systems, with many mission-critical applications unable to migrate due to regulatory or operational constraints.
Outages observed across many cloud identity providers (IdPs), only intensify the risk. For CISOs, IAM managers, and business leaders, the impact is clear: increased exposure, rising costs, and potentially detrimental interruptions to daily operations.
Why FIDO Authentication for SAS PCE Matters
Thales is addressing these challenges head-on with FIDO support for SafeNet Authentication Service Private Cloud Edition (SAS PCE).
By eliminating passwords and outdated MFA, SAS PCE introduces modern, phishing-resistant passkeys that reduce attack surfaces, protect against credential theft, and deliver a smoother user experience. Unlike cloud-only IAM solutions, SAS PCE unifies authentication across hybrid and on-premises systems, ensuring continuous access availability even when cloud IdPs fail.
The fallback mechanism provided by Thales guarantees operational continuity while maintaining high-security standards.
No passwords. No friction. No downtime.
With Thales, organizations gain:
- One platform, one supplier — unified authentication and policy control without third-party hardware dependencies and cost-drivers
- The broadest range of phishing-resistant methods — ensuring flexibility for every user and role
- Reduced IT overhead — with centralized management, reporting, and auditing
Supporting Legacy and Hybrid Environments
Many enterprises cannot—or don’t want to--completely move away from on-premises applications. Some workloads are not suited to the cloud and migration can be expensive, complex, or restricted by regulatory obligations.
With FIDO-enabled SAS PCE, these legacy systems receive the same phishing-resistant authentication as cloud-native apps.
The platform supports a broad range of phishing-resistant authentication methods. This flexibility is critical. Not every user can leverage the same device or authentication type. Shared workstations, specialized operational roles, and mobile constraints mean more than one or a few options is needed.
By supporting multiple authentication pathways, SAS PCE helps businesses meet compliance mandates and achieve higher MFA adoption rates—an average of 80%-100% MFA adoption seen across more than 2,000 customers worldwide.
Limiting User Friction and IT Overhead
Employees expect seamless access. Complex MFA flows or fragmented authentication systems frustrate employees, create security gaps, and slow productivity. SAS PCE simplifies authentication with intuitive passkeys, self-enrollment, and consistent system login experiences.
For IT teams, centralized policy management and reduced support tickets free up valuable resources to focus on strategic priorities instead of repetitive admin tasks, enabling policy enforcement, reporting, and auditing with fewer operational bottlenecks.
Strengthening Compliance and Digital Control
Compliance and governance are non-negotiable. SAS PCE provides detailed logging, reporting, and visibility to support audits while ensuring enterprises maintain control of their identity data.
For security and GRC teams, this means meeting regulatory requirements and security obligations without exposing sensitive data to unnecessary third-party risks. By centralizing authentication management on-premises, companies reduce reliance on external cloud providers and mitigate risks associated with third-party dependencies.
Preparing for a Secure Future
With the newly added FIDO support in SAS PCE, Thales delivers on its promise of unified access for a hybrid world. Organizations modernize authentication, protect legacy and hybrid systems, and ensure critical operations remain available, secure, and compliant.
Thales is the only provider combining continuous availability, phishing-resistant FIDO authentication, and unified access management in a single trusted platform.
Keep Your Business On—Everywhere, Every Time
In a landscape where outages, credential theft, and compliance demands threaten daily operations, Thales ensures that enterprises don’t have to compromise between security and continuity. With the combination of FIDO authentication and on-premises IAM in SAS PCE, organizations secure their legacy and hybrid systems, streamline IT operations, and deliver a frictionless experience to every user—whether on-premises or in the cloud.
For today’s businesses, that means stronger protections, lower risk, and the confidence that your business stays on—without passwords, friction, or interruptions.
Learn more about Thales’s SAS PCE and FIDO authentication by exploring our interactive demo.